This repository contains 2 reports about reverse engineering and malware analysis. The 2 reports are RE Keylogger and REvil/Sodinokibi Ransomware.
Keyloggers are a sneaky type of spyware. You type in private information on your keyboard while being sure that no one is looking. However, if a keylogging software is downloaded on your device, it will be diligently logging every keystroke you make. Keyloggers are software tools that track your offline and online activity and provide hackers with access to your personal information. By keeping track of your keystrokes, websites you browse, passwords you type, and credit card details can all be tracked. Your computer has the software installed, which keeps track of every keystroke you make. After that, it transfers this log file to a server, where hackers are waiting to use all of this private data. This report is divided into 3 phases โ developing a keylogger, basic analysis, and advanced analysis. This report will walk through each phase and explain the development and analysis in details.
This report will illustrate basic and advanced static and dynamic analysis of the REvil Ransomware. The report is divided into 4 phases โ cuckoo installation, basic analysis, unpacking the malware, and advanced analysis. This report will walk through each phase and explain the analysis in details.